WordPress Malware – Active VisitorTracker Campaign
Daniel Cid We are seeing a large number of WordPress sites compromised with the “visitorTracker_isMob” malware code. This campaign started 15 days ago, but only in the…
Browsing Category
WordPress Security
666 posts
WordPress Brute Force Attacks – 2015 Threat Landscape
One of the first server-level compromises I had to deal with in my life was around 15 years ago, and it was caused by an…
Wigo Means Bingo for Blackseo Agent
Denis Sinegubko This week my colleague Peter Gramantik showed me a few infected sites that had very similar code embedded in the WordPress index.php files: if (eregi(‘-dbst’,$_SERVER[‘REQUEST_URI’]))…
Persistent XSS Vulnerability in WordPress Explained
Marc-Alexandre Montpas Last week the WordPress team released a patch that fixed 6 security vulnerabilities. Of the six, you’ll find one that we identified a few months…
Ask Sucuri: How Did My WordPress Website Get Hacked? – A Tutorial
With the proliferation of Infrastructure and Platform as a Service providers, it is no surprise that a majority of today’s websites are hosting in the…
WP-CLI Guide: Install WordPress via SSH
Alycia Mitchell This is our fourth post on using WP-CLI to manage WordPress securely over SSH. In our first post we showed you how to connect to…
WP-CLI Guide: Secure Plugin & Theme Management
Welcome to our third post on WP-CLI for secure WordPress management over an SSH command line interface. In our previous two articles, we discussed how…
SweetCAPTCHA Returns Hijacking Another Plugin
Yesterday we observed a strange short return of the SweetCaptcha plugin to WordPress.org repository. In June we reported that SweetCaptcha injected third-party ad code to…
WP-CLI Guide: Secure WordPress Backup and Update
Welcome to our second post in the series on WP-CLI for WordPress management over SSH. In our previous post, we discussed how to get your…
WP-CLI Guide: Connect to WordPress via SSH Intro
Do you use the WordPress dashboard to update plugins and themes? How do you back up your database? If you have not used it yet,…
Common Website Security Terminology Defined
If you want to keep your website safe, it is important to understand the website security terminology used to describe the causes and effects of…